This would be my set-up in your case - note as someone said it was too complex I've removed the extra security bits I'd left in by accident... ## Port 80 && 443 default configs... <VirtualHost *:80> RequestHeader unset X-is-ssl RewriteEngine on RewriteRule ^(.*)$ https://www.mydomain.com%{REQUEST_URI} [R=permanent,L,NE] </VirtualHost> <VirtualHost *:443> RewriteEngine on RewriteRule ^(.*)$ https://www.mydomain.com/%{REQUEST_URI} [R,L,NE] </VirtualHost> ## Port 443 default - this is our main server...... so your main apache config stuff should be in here with SSL configured correctly.. <VirtualHost *:443> ServerName www.mydomain.com ... ... ... ... ... </VirtualHost> If you have more than one domain then you will need to add rules on port 80 to preserve the hostname & also blocks for each additional domain -- The Wellcome Sanger Institute is operated by Genome Research Limited, a charity registered in England with number 1021457 and a company registered in England with number 2742969, whose registered office is 215 Euston Road, London, NW1 2BE. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx